Sonatype Nexus Repository Room for Improvement

ColinStandish
Project Manager at a hospitality company with 10,001+ employees
We've had some challenges around the database they use. We've had some big outages and it's due to the fact that we haven't found the database they use is all that stable. I think they've realized that themselves. We're probably not the only customer who has complained to them about that. They're realizing there is a problem with the proprietary database and hopefully they'll be giving customers options to move to different database types. We've had some really positive conversations with Sonatype around that and they've provided us with the support and special services to help us migrate off of that, onto another type of database platform which we have more control over. View full review »
Christophe Arnaud
Engineering Manager at a tech vendor with 10,001+ employees
One of our main concerns would be about plugging Nexus IQ into JIRA to be able to automatically raise issues whenever we have a policy violation in a scan. The second main feature that is missing in Nexus IQ is the ability to explore the history of the different reports that have been generated for a given product. For the time being, in the Nexus IQ UI, we are only able to browse the latest reports that have been generated for a given product. It would be really useful for us to be able to go back in time by browsing through the reports and to have a tool that would give us the evolution of the metrics. Another one of our concerns, also regarding Nexus IQ, is about being able to manage the different versions of a given application within the web UI. For the time being, Nexus IQ is not able to manage the different versions of one application. We can define different applications that match the different versions of the product, but if we waive a policy for a given application, we are not able to spread this waiver across the different applications unless we scope it at the organization level. That is something we won't do for the time being because our organization does not permit us to do so. It would be a very helpful feature for us to be able to manage the versions of a different application within the web UI. View full review »
Architec9c59
Architect at a consultancy with 1,001-5,000 employees
We feel that if the product could be configured more easily through configuration files, instead of API calls and databases. That would make it easier to integrate with other DevOps tools. This is one of the hurdles that we encountered when we tried to integrate Nexus 3 with our OpenShift installation. The need to manipulate a dedicated Nexus database, instead of being able to generate configuration files, was a bit problematic. The inclusion of repositories that are currently supported by the community would be helpful, if possible. In particular, I'm thinking of Debian repositories. Otherwise, we don't have any request for large features because it's already a well-featured product. Everything else is included already. We are quite happy with the feature set. View full review »
Learn what your peers think about Sonatype Nexus Repository. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
464,369 professionals have used our research since 2012.
Kulbhushan Mayer
DevOps Practitioner at a financial services firm with 5,001-10,000 employees
One feature that needs changing is their pricing model. They are charging a huge amount. The way they charge it's too much. In addition, they should have some feature where we can move a specific repository from one instance of Nexus to another instance of Nexus. As of now, this feature doesn't exist. With the recent upgrade, when they moved from 2.x to 3.x, they made a couple of changes in the backend regarding how data is saved. That, again, makes it a bit difficult to move the changes. So the feature that I would suggest is the capability to move repositories that people have configured in their systems from one instance to the other. If they had this feature, it would be very effective. View full review »
SeniorApba61
Senior Application Architect at a financial services firm with 10,001+ employees
When it comes to the library uploads, for Java libraries it's very easy. You choose the .jar that is to be uploaded. But when it comes to uploading NPM libraries, JavaScript dependencies libraries, it is a little bit of a convoluted process. They need to improve uploading libraries for NPM-type repositories. There is good room for improvement there. View full review »
Anthony Evans
Chief, Enterprise Automated Deployment (EAD) Branch at a government with 11-50 employees
I would like to see them build in some scanning features out-of-the-box, as opposed to only getting them by buying the add-ons of Nexus IQ Server. I would like to see some level of ability to filter in the tool itself, through scanning the binaries in there. View full review »
Yogesh Shetty
Senior Information Technology Specialist at a financial services firm with 5,001-10,000 employees
We had some issues with the container platform, but we raised a support ticket and it was sorted out for us. View full review »
Learn what your peers think about Sonatype Nexus Repository. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
464,369 professionals have used our research since 2012.